Insecure redirect chain

Created on 11 July 2024, 5 months ago

Our sites were recently flagged by Tenable for "insecure redirect chain."

Looking at the redirect chain in devtools, I see https://example.com/redirected-alias -> http://example.com/alias -> https://example.com/alias

Is this normal behavior or am I missing something that would enforce https through the entire redirect chain?

💬 Support request

Status

Active

Version

1.9

Component

Code

Created by

🇺🇸United States eeyorr

Live updates comments and jobs are added and updated live.

Comments & Activities

Issue created by @eeyorr

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024